CVE-2005-1708

Published: May 24, 2005Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true.

Affected (1)

Products: Bluecoat: Reporter

Bluecoat

1 product

Reporter

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Bluecoat Reporter	Up to 7.1.1

References (12)

http://marc.info/?l=bugtraq&m=111695726810435&w=2

Source: cve@mitre.org

http://secunia.com/advisories/15452

Source: cve@mitre.org

Vendor Advisory

http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html

Source: cve@mitre.org

Patch

http://www.osvdb.org/16763

Source: cve@mitre.org

http://www.securityfocus.com/bid/13723

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2005/0589

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=111695726810435&w=2